Philippines health insurer hacked: What we know
/ Photo: JAM STA ROSA - AFP
-
Deadly storm sparks floods in Spain, disrupts Portugal vote
-
Ukrainian flag bearer proud to show his country is still standing
-
Carney scraps Canada EV sales mandate
-
Morocco says evacuated 140,000 people due to severe weather
-
Spurs boss Frank says Romero outburst 'dealt with internally'
-
Giannis suitors make deals as NBA trade deadline nears
-
Carrick stresses significance of Munich air disaster to Man Utd history
-
Record January window for transfers despite drop in spending
-
'Burned inside their houses': Nigerians recount horror of massacre
-
Iran, US prepare for Oman talks after deadly protest crackdown
-
Winter Olympics opening ceremony nears as virus disrupts ice hockey
-
Mining giant Rio Tinto abandons Glencore merger bid
-
Davos forum opens probe into CEO Brende's Epstein links
-
ECB warns of stronger euro impact, holds rates
-
Famine spreading in Sudan's Darfur, warn UN-backed experts
-
Lights back on in eastern Cuba after widespread blackout
-
Russia, US agree to resume military contacts at Ukraine talks
-
Greece aims to cut queues at ancient sites with new portal
-
No time frame to get Palmer in 'perfect' shape - Rosenior
-
Stocks fall as tech valuation fears stoke volatility
-
US Olympic body backs LA28 leadership amid Wasserman scandal
-
Gnabry extends Bayern Munich deal until 2028
-
England captain Stokes suffers facial injury after being hit by ball
-
Italy captain Lamaro amongst trio set for 50th caps against Scotland
-
Piastri plays down McLaren rivalry with champion Norris
-
ECB holds interest rates as strong euro causes jitters
-
Spain, Portugal face floods and chaos after deadly new storm
-
EU close to sealing trade deal with Australia
-
German Cup final to stay in Berlin until 2030
-
What does Iran want from talks with the US?
-
Taming the lion: Olympians take on Bormio's terrifying Stelvio piste
-
Wind turbine maker Vestas sees record revenue in 2025
-
Italy's Casse tops second Olympic downhill training
-
Anti-doping boss 'uncomfortable' with Valieva's coach at Olympics
-
Bitcoin under $70,000 for first time since Trump's election
-
'I am sorry,' embattled UK PM tells Epstein victims
-
England's Brook predicts record 300-plus scores at T20 World Cup
-
Ukraine, Russia swap prisoners, US says 'work remains' to end war
-
Wales' Rees-Zammit at full-back for Six Nations return against England
-
Sad horses and Draco Malfoy: China's unexpected Lunar New Year trends
-
Hong Kong students dissolve pro-democracy group under 'severe' pressure
-
Germany claws back 59 mn euros from Amazon over price controls
-
Germany claws back 70 mn euros from Amazon over price controls
-
VW and Stellantis urge help to keep carmaking in Europe
-
Stock markets drop amid tech concerns before rate calls
-
BBVA posts record profit after failed Sabadell takeover
-
UN human rights agency in 'survival mode': chief
-
Greenpeace slams fossil fuel sponsors for Winter Olympics
-
Greenpeace slams fossel fuel sponsors for Winter Olympics
-
Kinghorn, Van der Merwe dropped by Scotland for Six Nations opener
NYSE - LSE
| CMSC | -0.17% | 23.48 | $ | |
| SCS | 0.12% | 16.14 | $ | |
| NGG | -0.71% | 87.17 | $ | |
| RBGPF | 0.12% | 82.5 | $ | |
| RYCEF | -0.36% | 16.62 | $ | |
| RIO | -4.49% | 92.335 | $ | |
| CMSD | 0.21% | 23.92 | $ | |
| GSK | 3.44% | 59.27 | $ | |
| BTI | 0.61% | 62.01 | $ | |
| BCE | -4.2% | 25.279 | $ | |
| RELX | 0.73% | 30 | $ | |
| BCC | -2.52% | 88.01 | $ | |
| VOD | -6.98% | 14.685 | $ | |
| AZN | 0.78% | 188.92 | $ | |
| BP | -2.42% | 38.275 | $ | |
| JRI | 0.3% | 13.19 | $ |
Philippines health insurer hacked: What we know
Hackers have stolen the personal data of potentially millions of people from the Philippines's national health insurer, which has urged members to change their passwords after the "staggering" cyberattack.
The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.
Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:
What did the hackers steal?
PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.
As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors -- more than half the population of the Philippines.
PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.
Separately, employee information was also stolen from the targeted computers.
The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.
An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as "staggering".
Who are the hackers, and what do they want?
The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.
MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.
The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.
It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.
How did they get the data?
On September 22, PhilHealth staff were unable to access a number of computers, which displayed a message saying hackers had locked the machines and encrypted the data.
The insurer shut down the affected systems to try and stop the attack from spreading, slowing or entirely shutting down some online services for days.
The government has so far not said exactly how hackers got access to the computers.
But in interviews with local media last week, senior PhilHealth official Israel Pargas said the insurer did not have an antivirus software at the time of the attack.
How has the government responded?
With a blunt 'No'. The Philippines does not pay ransom in any criminal cases, including cyberattacks, officials have said.
However, with hackers releasing more data from the stolen files, calls have grown for the government to conduct an audit of its cyber defences.
The National Privacy Commission said Saturday it has started an investigation into any potential lapses and data law violations by PhilHealth.
The NPC said its analysis of 734 GB of stolen data revealed "sensitive personal data", and warned the public that anyone who downloads this information could face criminal charges.
Q.Bulbul--SF-PST
